Data Protection and Security Policy

Effective Date: 01-Jan-2024

At Aankda Analytics, we are committed to protecting the security and privacy of the data entrusted to us by our clients and their customers. This Data Protection and Security Policy outlines the principles and measures we implement to ensure the confidentiality, integrity, and availability of all data we process, store, and manage in our operations.

Scope

This policy applies to all employees, contractors, and third parties who have access to data processed by Aankda Analytics, including but not limited to personal data, financial data, and proprietary business information.

Data Protection Principles

Aankda Analytics adheres to the following data protection principles:

  • Lawfulness, Fairness, and Transparency: Data is processed legally, fairly, and in a transparent manner.
  • Purpose Limitation: Data is collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes.
  • Data Minimization: Only data that is necessary for the purposes of processing is collected and processed.
  • Accuracy: Reasonable steps are taken to ensure that personal data is accurate and, where necessary, kept up to date.
  • Storage Limitation: Data is kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed.
  • Integrity and Confidentiality: Data is processed in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.

Security Measures

Technical Measures

  • Encryption: Personal and sensitive data is encrypted during transmission and at rest.
  • Access Control: Access to data is restricted to authorized personnel based on the principle of least privilege.
  • Network Security: Firewalls, intrusion detection systems, and regular vulnerability assessments are employed to protect against unauthorized access.
  • Data Backup: Regular backups are performed to ensure data can be recovered in the event of loss or damage.

Organizational Measures

Training: Employees receive regular training on data protection and information security principles.
Data Processing Agreements: Contracts with third parties include obligations to adhere to data protection and security standards.
Incident Response Plan: A plan is in place to respond to data breaches or security incidents, including notification procedures.

Data Subject Rights

Individuals whose personal data is processed by Aankda Analytics have the right to access, correct, delete, or restrict processing of their data, among other rights, as applicable under data protection laws.

Breach Notification

In the event of a data breach, Aankda Analytics will promptly notify affected individuals and relevant authorities as required by law, detailing the nature of the breach, the data involved, the likely consequences, and the measures taken or proposed to address the breach.

Policy Review and Updates

This policy will be reviewed at least annually and updated as necessary to reflect changes in our operations, legal requirements, and best practices in data protection and security.

Contact Information

For questions or concerns regarding this policy or data protection practices at Aankda Analytics,
please contact:
info@aankdaanalytics.com | +91-8690502061